Re: Re: Inline serial clustering - Stonegate IPS

[tomi.kononow () stonesoft com]

*** I work for Stonesoft ***

Hi,

A comment related to serial clustering technology in our product.

Typically, inline serial cluster deployment is considered when the IPS inspection capacity becomes a bottleneck but 
when the link has not been saturated yet. E.g. inline IPS deployment for 10Gbit link when traffic volume or packet size 
distribution may become a problem for a single IPS, but which a cluster of IPSs can still handle. 

The StoneGate IPS serial clustering is a built-in active-active clustering solution that provides throughput scaling 
and high-availability for the network traffic inspection. In serial cluster, traffic passes through all the IPS nodes, 
but on a per-connection basis, only one node controls access and inspects the connection at the time. The other nodes 
simply bypass the traffic.

> From network perspective, high availability can be provided the same way as it would be done for a network cable; with 
> a redundant network topology. As an alternative solution for serial cluster throughput scaling, link aggregation 
> solutions can be used with IPS systems too. 

Tomi